Security Engineer

Summary

Join Lirio as a Security Engineer and be a key contributor to the security operations and analysis of our cloud-native Precision Nudging platform and internal networks. You will partner with various teams to enhance our security posture, investigate and remediate security events, and implement security tools and processes. This role involves continuous improvement of security tools and automation, contributing to security architecture reviews, and implementing security policies and controls. You will also support risk assessments, compliance audits, and vulnerability scanning. The ideal candidate possesses strong experience in cloud security, Microsoft Defender suite, and Azure Sentinel, along with a deep understanding of security principles and best practices.

Requirements

• 3-5 years of related experience
• Experience configuring, operating and optimizing the Microsoft Defender suite and Azure Sentinel
• Experience with cloud architectures and security, including concepts like microservices, containers, and technologies like Kubernetes and Kafka
• Experience in cybersecurity implementations and operations within the healthcare industry
• Knowledge in modern network architectures, technologies and network security best practices
• Knowledge in modern security principles including zero trust, conditional access, defense in depth and attack surface reduction
• Experience writing technical Security documentation
• Experience in Terraform and Security As Code methodologies
• Experience writing Azure Sentinel Queries with Kusto Query Language (KQL)
• Experience supporting GRC adherence from an application security and infrastructure standpoint, codifying controls based on standards like HIPAA HITRUST, SOC2, NIST CSF
• Cloud IaaS security experience
• Secrets management experience with Azure Key vault
• Experience analyzing, assessing, and respond to various internet threats; conduct regular security assessments
• General *nix and system administration knowledge
• Scripting knowledge for Security testing and API integrations (Python, Bash, Go etc.)
• Security Tool Expertise like Microsoft Defender for: Endpoint, for Cloud for Containers, Runtime Security, EDR, Snyk
• Microsoft Intune
• Firewalls & Access Control Lists, Web Application Firewalls, building policies and analyzing flows using SIEM, tcpdump, Wireshark
• Understanding of containers and microservices architecture (docker, Kubernetes etc.)
• Source Code Management: Git, Gradle, Azure Devops
• Infrastructure as code: Terraform, CloudFormation, Ansible, Chef, Helm
• Written and verbal communication skills, time management skills, comfortable in a fast-paced environment
• Collaborative / team oriented, willingness to teach and learn
• Ability to quickly learn company terminology and processes

Responsibilities

• Be a key contributor to security operations & analysis, including monitoring of log and alert streams across the Lirio networks
• Perform security event/alert analysis, investigation and remediation
• Prioritize and remediate CVEs
• Perform security access and vendor reviews
• Execute internal testing activities, including but not limited to internal scans, phishing campaigns, and internal penetration testing
• Be a key contributor to incident management activities
• Strengthen Lirio's security posture by continuously evaluating and maturing security tools such as Defender for Cloud, Defender for Endpoint, Defender for Containers & API's, Azure Sentinel and Snyk security platform
• Continuously improve the level of automation/information in the security tools by creating security playbooks and dashboards in KQL for Azure Sentinel SIEM
• Contribute to security architecture reviews of application designs, cloud infrastructure, identifying threats and vulnerabilities to Lirio systems; provide security recommendations and aligning them to GRC risk ranking systems
• Implement information security policies, controls and systems adhering to Governance, Risk and Compliance standards
• Create and maintain technical documentation around security practices and initiatives, ensuring detailed records of security protocols, tools, processes, and incident responses
• Implement and monitor the secure baseline and secure configuration required for production systems at Lirio
• Support risk assessments, including privacy risk assessments, as needed
• Support compliance and security audits as needed through evidence gathering
• Deploy and run cloud-based vulnerability scans for internal and external asset
• Utilize offensive security & penetration testing experience to drive security posture improvements across the organization
• Conduct black box testing, code reviews, automation, threat modeling and research to reduce risk to Lirio microservices and Infrastructure

Preferred Qualifications

CISSP, CEH, and/or CCSP certifications

Benefits

• Medical (HSA available)
• Dental
• Vision
• Short-term & long-term disability (company-paid)
• Life & AD&D (company-paid)
• 401K with company match
• 10 paid holidays + holiday week company closure
• Flexible time off policy
• Work from home